logo

Incorrect Check of Function Return Value

Incomplete Base
Structure: Simple
Description

This vulnerability occurs when a program misinterprets or improperly validates the return value from a function, causing it to miss critical error states or unexpected conditions.

Extended Description

Many critical functions, especially those dealing with system resources, memory, files, or network connections, communicate success or failure through their return values. A developer must correctly check these values to understand if the operation completed as expected or if an error occurred that requires handling, such as a failed memory allocation or a closed network socket. Failing to perform accurate checks often leads to the program continuing execution as if nothing is wrong, even when it's operating on invalid data, null pointers, or corrupted states. This creates a gap between the actual error and the program's awareness of it, allowing subsequent operations to fail silently or behave unpredictably, which can lead to crashes, data corruption, or security bypasses.
Common Consequences 1
Scope: AvailabilityIntegrity

Impact: Unexpected StateDoS: Crash, Exit, or Restart

An unexpected return value could place the system in a state that could lead to a crash or other unintended behaviors.
Potential Mitigations 3
Phase: Architecture and Design

Strategy: Language Selection

Use a language or compiler that uses exceptions and requires the catching of those exceptions.
Phase: Implementation
Properly check all functions which return a value.
Phase: Implementation
When designing any function make sure you return a value or throw an exception in case of an error.
Demonstrative Examples 1
This code attempts to allocate memory for 4 integers and checks if the allocation succeeds.

Code Example:

Bad
C
c

//should have checked if the call returned 0* }

The code assumes that only a negative return value would indicate an error, but malloc() may return a null pointer when there is an error. The value of tmp could then be equal to 0, and the error would be missed.
Observed Examples 1
CVE-2023-49286Chain: function in web caching proxy does not correctly check a return value (Incorrect Check of Function Return Value) leading to a reachable assertion (Reachable Assertion)
References 2
The Art of Software Security Assessment
Mark Dowd, John McDonald, and Justin Schuh
Addison Wesley
2006
ID: REF-62
The CLASP Application Security Process
Secure Software, Inc.
2005
https://cwe.mitre.org/documents/sources/TheCLASPApplicationSecurityProcess.pdf(2024-11-17)
ID: REF-18
Likelihood of Exploit

Low

Applicable Platforms
Languages:
Not Language-Specific : Undetermined
Modes of Introduction
Implementation
Related Weaknesses
ChildOf: Improper Following of Specification by Caller (CWE-573)
ChildOf: Improper Check for Unusual or Exceptional Conditions (CWE-754)
Taxonomy Mapping
  • CLASP
  • Software Fault Patterns
  • CERT C Secure Coding
  • CERT C Secure Coding